I was able to setup Citrix Access Gateway VPX 5.0.4 using
Webinterface 5.4. Using the following link: http://blog.benpiper.com/2011/07/deploying-citrix-access-gateway-vpx-with-web-interface-5-4-cag-setup-with-radius/
I wanted to be able for my iPhone, Android phone, or Citrix
Receiver 3.1 to access my applications as well. So I created the following
directions. This is for XenDesktop 5.5 and XenApp 6.5
Note: This document assumes you have setup a SSL certificate from a trusted certificate authority on your Citrix Access Gateway.
Note: This document assumes you have setup a SSL certificate from a trusted certificate authority on your Citrix Access Gateway.
First you need to create a new XenApp Services Site. Log
onto the server that has Citrix Web Interface installed. Now create a new
XenApp Services Site:
Click Next then Click Next Again and Next Again. You will
get a Creating Site progress window. Then you will see a Finished screen. Click
next to specify initial configuration:
Enter your farm name and enter the servers in the farm.
Click Next select the resource type you will use. I am using Online. Click
Next. Then Click Finish.
Now click on your new site and click Secure Access to edit
your secure access settings.
Change it to Gateway Direct and click next
Enter your Citrix Access Gateway Fully Qualified Domain Name
and click next.
Enter your Citrix server that has secure ticket authority
running. This could be your XenDesktop Delivery Controller.
Click Finished. Now the basic settings are setup on your web
interface. Time to configure your Citrix Access Gateway.Login into the admin section of your Citrix Access Gateway
You must create the /PNAgent and the PNAgent/config.xml for it to work.
Click Save then Click Save Again.
Now click on “XenApp or XenDesktop”.
Enter the IP Address Range of your XenApp and XenDesktop
servers. You will need to create a ICA and Session reliability rule for each
range of IPs.
Once you are done click on “Secure Ticket Authority”
Enter the fully qualified domain name for your Citrix server
that has the Secure Ticket Authority running on it. You can use your XenDesktop
5.5 desktop delivery controller. Click ok now you are done with with Citrix
Access Gateway configuration.
Next is to configure the Citrix Client. I opened up my
Citrix Receiver and clicked Add Account
You can call this account anything you want. Enter the URL
of your Citrix Access Gateway then add http/ and your Citrix Web Interface URL pointing to the new XenAPp
Services Site you just created. See Example below.
https://cag.test.com/http/wi.test.com/Citrix/PNAgentExt/config.xml
This is a great article. I'd struggled with this for a while now - the correct format of the Account URL was the final missing piece for me. Thanks!
ReplyDeleteScottC
This is the first place I've seen this mentioned (the need to add the http/ and web interface url part)...amazing!
ReplyDeleteStill a little mind boggling that we cant access it as a native services site from the iPad Citrix Reciever...
server is currently unavailable :(
ReplyDeletevia WI is everything allright
Hi,
ReplyDeleteReally useful blogpost, thanks. One possible improvement. At the end of the process the users can actaully use the address:
https://cag.test.com/lp/receiver
which will auto redirect to https://cag.test.com/http/wi.test.com/Citrix/PNAgentExt/config.xml
This makes it a bit easier for users to setup their device and mean you don't have to expose the internal web address...